Route Origin Authorization
$ rpki-client -vvf rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/43ac5ede-1d27-41a5-932c-21832f3ef95c/731e66c1-a71e-3d9f-a838-e78228e9ff90.roa
File: 731e66c1-a71e-3d9f-a838-e78228e9ff90.roa (raw, json)
Hash identifier: CUJAg2FLqCVgRw6AePfiXRw7GAcT9QdHP5Syt2Y7Ob4=
Subject key identifier: 5B:0C:BD:3E:57:7B:0E:BE:93:A9:1B:30:B6:FE:BC:5C:28:A6:81:F1
Certificate issuer: /CN=43ac5ede-1d27-41a5-932c-21832f3ef95c
Certificate serial: 010D0C9F4328584827C53C100ECDB88A5990B370
Authority key identifier: 09:3E:48:28:77:AE:C9:66:5D:E7:F1:3F:39:E3:B7:7E:84:9F:9A:CD
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/43ac5ede-1d27-41a5-932c-21832f3ef95c.cer
Subject info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/43ac5ede-1d27-41a5-932c-21832f3ef95c/731e66c1-a71e-3d9f-a838-e78228e9ff90.roa
Signing time: Tue 10 Dec 2024 02:00:40 +0000
ROA not before: Tue 10 Dec 2024 02:00:40 +0000
ROA not after: Mon 10 Mar 2025 01:00:40 +0000
asID: 11734
IP address blocks: 104.151.136.0/21 maxlen: 24
104.153.192.0/22 maxlen: 24
199.19.208.0/22 maxlen: 24
199.189.64.0/22 maxlen: 24
208.74.28.0/22 maxlen: 24
208.74.48.0/22 maxlen: 24
208.82.204.0/22 maxlen: 24
208.91.48.0/22 maxlen: 24
209.134.48.0/20 maxlen: 24
2607:f148::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:0d:0c:9f:43:28:58:48:27:c5:3c:10:0e:cd:b8:8a:59:90:b3:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43ac5ede-1d27-41a5-932c-21832f3ef95c
Validity
Not Before: Dec 10 02:00:40 2024 GMT
Not After : Mar 10 01:00:40 2025 GMT
Subject: CN=50a123c9-c644-4fbf-91a6-5a39a9c0b266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:d1:f3:f3:5e:3d:98:5f:f7:d5:dd:f0:3d:
4d:2d:ec:1b:20:42:43:04:b7:32:7f:00:62:aa:72:
93:fd:70:2c:31:b5:7b:a7:dd:90:b3:93:74:5e:fd:
eb:da:79:d2:c1:53:24:03:00:9c:96:85:8e:66:d6:
ac:c1:f8:2e:cc:63:bf:d1:18:fa:a0:c1:0f:08:2e:
59:df:c9:ba:e7:91:17:1f:c7:59:9a:76:da:01:b8:
d1:ef:b6:fc:f9:db:03:1a:ee:d8:c8:31:97:4e:07:
8e:f2:e7:2e:77:5c:bf:60:f1:27:17:32:c5:4c:be:
22:38:76:f2:1b:67:b6:32:8d:a2:af:a5:a9:22:fe:
75:df:e2:cc:3e:52:0d:20:b6:ee:bc:69:33:8b:62:
2e:d6:b2:18:f1:5e:b9:a3:c9:d2:b5:1e:f4:e0:bc:
c3:6a:07:2d:e9:60:f1:b8:b5:d5:44:f9:05:b5:f8:
da:2d:e9:d9:da:17:ab:94:58:c6:f7:21:bf:ad:6d:
e2:00:39:b8:e8:ef:3f:ee:50:57:ae:55:9d:0b:83:
87:18:76:ad:a0:b7:c5:b3:d1:7c:92:79:a0:45:cf:
51:1d:88:c0:5c:e3:c6:eb:e1:8e:6f:5b:33:62:3a:
28:80:ba:33:c3:d4:27:10:80:6d:f1:c6:99:f4:3a:
ba:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:0C:BD:3E:57:7B:0E:BE:93:A9:1B:30:B6:FE:BC:5C:28:A6:81:F1
Subject Information Access:
Signed Object - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/43ac5ede-1d27-41a5-932c-21832f3ef95c/731e66c1-a71e-3d9f-a838-e78228e9ff90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/43ac5ede-1d27-41a5-932c-21832f3ef95c/43ac5ede-1d27-41a5-932c-21832f3ef95c.crl
X509v3 Authority Key Identifier:
keyid:09:3E:48:28:77:AE:C9:66:5D:E7:F1:3F:39:E3:B7:7E:84:9F:9A:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/43ac5ede-1d27-41a5-932c-21832f3ef95c.cer
sbgp-ipAddrBlock: critical
IPv4:
104.151.136.0/21
104.153.192.0/22
199.19.208.0/22
199.189.64.0/22
208.74.28.0/22
208.74.48.0/22
208.82.204.0/22
208.91.48.0/22
209.134.48.0/20
IPv6:
2607:f148::/32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.arin.net/resources/rpki/cps.html
Signature Algorithm: sha256WithRSAEncryption
40:f9:67:e0:b5:8e:c5:32:d7:22:a5:2c:2d:ae:22:f5:4f:9e:
80:06:92:ac:9c:3e:1d:9c:74:30:c1:26:65:c2:bd:75:7f:16:
79:b8:fb:be:ca:af:23:68:0a:03:3b:38:65:49:39:f5:94:66:
82:81:ad:bd:c9:83:00:b6:5d:fc:9c:75:78:72:1d:eb:bb:69:
66:59:80:4d:a6:a1:58:01:45:39:92:01:c8:8c:31:d2:d8:c6:
18:79:78:83:e8:df:bb:8a:5c:db:d7:0c:06:4a:6d:57:25:d2:
00:a3:e2:50:22:76:07:aa:c5:a1:d5:e5:03:de:b6:bb:3c:9c:
92:30:34:67:62:52:38:7f:db:de:82:c2:4f:42:0a:ea:f0:98:
be:23:9c:2e:43:bb:80:19:88:8d:7b:e5:c9:f7:da:90:ac:11:
8e:b2:4d:92:85:2d:91:ce:80:03:93:bb:7a:09:f3:16:eb:09:
75:30:d3:8a:f8:83:ae:9a:96:bf:84:a1:77:79:79:d9:3a:83:
f8:a0:c9:e7:96:03:b1:dd:2c:93:97:36:d9:28:8f:16:95:19:
0d:59:30:99:e0:bd:f2:d1:97:81:cf:bf:b7:c8:5c:e2:f0:35:
92:b9:dd:4b:4b:23:95:de:83:e3:66:1e:ce:e6:48:8c:ab:8a:
3f:dd:23:b7
-----BEGIN CERTIFICATE-----
MIIGgjCCBWqgAwIBAgIUAQ0Mn0MoWEgnxTwQDs24ilmQs3AwDQYJKoZIhvcNAQEL
BQAwLzEtMCsGA1UEAxMkNDNhYzVlZGUtMWQyNy00MWE1LTkzMmMtMjE4MzJmM2Vm
OTVjMB4XDTI0MTIxMDAyMDA0MFoXDTI1MDMxMDAxMDA0MFowLzEtMCsGA1UEAxMk
NTBhMTIzYzktYzY0NC00ZmJmLTkxYTYtNWEzOWE5YzBiMjY2MIIBIjANBgkqhkiG
9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWXR8/NePZhf99Xd8D1NLewbIEJDBLcyfwBi
qnKT/XAsMbV7p92Qs5N0Xv3r2nnSwVMkAwCcloWOZtaswfguzGO/0Rj6oMEPCC5Z
38m655EXH8dZmnbaAbjR77b8+dsDGu7YyDGXTgeO8ucud1y/YPEnFzLFTL4iOHby
G2e2Mo2ir6WpIv513+LMPlINILbuvGkzi2Iu1rIY8V65o8nStR704LzDagct6WDx
uLXVRPkFtfjaLenZ2herlFjG9yG/rW3iADm46O8/7lBXrlWdC4OHGHatoLfFs9F8
knmgRc9RHYjAXOPG6+GOb1szYjoogLozw9QnEIBt8caZ9Dq6YwIDAQABo4IDlDCC
A5AwHQYDVR0OBBYEFFsMvT5Xew6+k6kbMLb+vFwopoHxMIHlBggrBgEFBQcBCwSB
2DCB1TCB0gYIKwYBBQUHMAuGgcVyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3Np
dG9yeS9hcmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRh
MjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS80M2Fj
NWVkZS0xZDI3LTQxYTUtOTMyYy0yMTgzMmYzZWY5NWMvNzMxZTY2YzEtYTcxZS0z
ZDlmLWE4MzgtZTc4MjI4ZTlmZjkwLnJvYTCB3AYDVR0fBIHUMIHRMIHOoIHLoIHI
hoHFcnN5bmM6Ly9ycGtpLmFyaW4ubmV0L3JlcG9zaXRvcnkvYXJpbi1ycGtpLXRh
LzVlNGEyM2VhLWU4MGEtNDAzZS1iMDhjLTIxNzFkYTIxNTdkMy9mNjBjOWYzMi1h
ODdjLTQzMzktYTJmMy02Mjk5YTNiMDJlMjkvNDNhYzVlZGUtMWQyNy00MWE1LTkz
MmMtMjE4MzJmM2VmOTVjLzQzYWM1ZWRlLTFkMjctNDFhNS05MzJjLTIxODMyZjNl
Zjk1Yy5jcmwwHwYDVR0jBBgwFoAUCT5IKHeuyWZd5/E/OeO3foSfms0wDgYDVR0P
AQH/BAQDAgeAMIHABggrBgEFBQcBAQSBszCBsDCBrQYIKwYBBQUHMAKGgaByc3lu
YzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9hcmluLXJwa2ktdGEvNWU0YTIz
ZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2QzL2Y2MGM5ZjMyLWE4N2MtNDMz
OS1hMmYzLTYyOTlhM2IwMmUyOS80M2FjNWVkZS0xZDI3LTQxYTUtOTMyYy0yMTgz
MmYzZWY5NWMuY2VyMF4GCCsGAQUFBwEHAQH/BE8wTTA8BAIAATA2AwQDaJeIAwQC
aJnAAwQCxxPQAwQCx71AAwQC0EocAwQC0EowAwQC0FLMAwQC0FswAwQE0YYwMA0E
AgACMAcDBQAmB/FIMFQGA1UdIAEB/wRKMEgwRgYIKwYBBQUHDgIwOjA4BggrBgEF
BQcCARYsaHR0cHM6Ly93d3cuYXJpbi5uZXQvcmVzb3VyY2VzL3Jwa2kvY3BzLmh0
bWwwDQYJKoZIhvcNAQELBQADggEBAED5Z+C1jsUy1yKlLC2uIvVPnoAGkqycPh2c
dDDBJmXCvXV/Fnm4+77KryNoCgM7OGVJOfWUZoKBrb3JgwC2XfycdXhyHeu7aWZZ
gE2moVgBRTmSAciMMdLYxhh5eIPo37uKXNvXDAZKbVcl0gCj4lAidgeqxaHV5QPe
trs8nJIwNGdiUjh/296Cwk9CCurwmL4jnC5Du4AZiI175cn32pCsEY6yTZKFLZHO
gAOTu3oJ8xbrCXUw04r4g66alr+EoXd5edk6g/igyeeWA7HdLJOXNtkojxaVGQ1Z
MJngvfLRl4HPv7fIXOLwNZK53UtLI5Xeg+NmHs7mSIyrij/dI7c=
-----END CERTIFICATE-----
Generated at Sat Apr 26 09:34:12 2025 by rpki-client